$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9141eb3-8c95-492c-9677-b9dbd5ff8f2d.roa File: b9141eb3-8c95-492c-9677-b9dbd5ff8f2d.roa (raw, json) Hash identifier: fintShgIP7nyVtnRot1wPMUlrswQdAK+6nM3nyPSkfo= Subject key identifier: D9:CC:F4:5B:8E:35:32:28:82:24:57:3C:38:92:1C:37:CA:E0:4E:C1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 53BC434AEA48E552407966285C27BCAD365691C5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9141eb3-8c95-492c-9677-b9dbd5ff8f2d.roa Signing time: Tue 12 May 2026 01:20:08 +0000 ROA not before: Tue 12 May 2026 01:20:08 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:bc:43:4a:ea:48:e5:52:40:79:66:28:5c:27:bc:ad:36:56:91:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:20:08 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=7a112bf69f38c314f0be4bdfa6faf5fa348c2c2db776b544b3c228a1827cfadc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:dd:72:fe:c9:31:37:16:a5:ef:24:17:4c:f3: b8:05:8f:cc:dd:b4:91:ea:ee:a4:6b:b4:67:36:86: ee:b5:44:fa:d1:76:3f:5d:bd:a2:b4:29:a0:33:b4: 64:72:f1:c5:35:27:3c:dc:eb:98:fb:75:35:d0:89: 8b:d5:28:a8:03:9e:a4:b4:e3:fc:fd:61:9c:4a:ea: e2:d9:87:85:c8:96:f1:0e:28:f6:ba:56:3b:36:04: af:11:d2:96:ee:03:d4:52:da:fe:ea:d4:21:c7:2f: f2:48:f7:8f:bf:6f:43:3c:b8:7d:7e:97:39:46:6b: 8b:b0:11:48:92:f7:26:07:02:92:17:ce:97:ec:13: ea:b5:ae:c6:93:9e:de:4d:d3:8f:bf:be:04:68:a6: 4e:7e:d8:05:d8:5a:5c:1b:8d:72:64:e9:36:6b:54: 47:89:fc:c5:04:9c:cc:62:42:a3:e2:68:65:82:70: fa:24:cd:71:52:fe:33:d9:5a:cd:0a:29:a0:f9:e6: 86:ea:46:ed:7e:72:f4:af:99:50:26:5c:ce:e7:aa: b2:2b:7c:47:d5:b7:b5:77:90:3f:17:1f:d9:15:9d: 15:a6:72:f6:54:29:bf:eb:50:d6:d0:68:b3:8f:59: 5b:57:4a:5d:29:da:54:87:35:0d:20:b3:31:0a:cd: b4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:CC:F4:5B:8E:35:32:28:82:24:57:3C:38:92:1C:37:CA:E0:4E:C1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9141eb3-8c95-492c-9677-b9dbd5ff8f2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.43.0/24 Signature Algorithm: sha256WithRSAEncryption 09:2a:c5:af:40:94:2f:a8:f9:ac:e5:08:4e:d9:72:22:f6:8f: 9d:b1:b8:c9:e6:06:14:2b:87:41:31:3d:2a:99:a4:0e:84:bd: 1f:7c:18:e3:17:f2:7b:03:38:43:b7:be:33:52:b3:21:8f:4e: 13:ad:c3:7f:27:a4:c5:5e:5e:6b:1d:a8:bf:3f:a3:64:94:12: c1:28:13:3b:13:b2:08:9f:87:88:72:45:77:c1:bf:57:d4:0e: 12:41:5e:b7:7b:55:91:50:7b:ce:4c:fd:b6:11:31:73:f8:29: e3:95:bd:1e:47:45:e1:f7:2d:b5:be:4e:29:ff:19:b6:a9:6b: b6:68:cb:58:b9:80:aa:fd:f0:b9:35:9e:05:c2:fe:c5:13:c0: 96:ac:ad:8f:6d:05:2c:8b:52:30:7b:1d:23:c8:b3:d7:c0:85: 61:2f:99:c3:f3:58:2b:99:fe:f1:cc:0c:e3:a2:b8:7f:9e:4b: 1a:c5:b5:14:6c:78:62:84:0b:fe:17:d7:d9:4e:3c:db:e1:63: 3d:a5:c1:04:0a:5d:ee:79:c3:28:4e:01:49:ef:a4:35:cb:aa: d7:43:15:94:c3:96:7e:b4:ef:d5:a7:9f:b0:31:61:42:d3:dd: be:12:99:c1:f9:34:a0:b4:4b:c7:61:05:80:9a:35:38:41:08: 33:e5:0f:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU7xDSupI5VJAeWYoXCe8rTZWkcUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDEyMDA4WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTExMmJmNjlmMzhjMzE0ZjBiZTRiZGZhNmZhZjVmYTM0 OGMyYzJkYjc3NmI1NDRiM2MyMjhhMTgyN2NmYWRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDi3XL+yTE3FqXvJBdM87gFj8zdtJHq7qRrtGc2hu61RPrR dj9dvaK0KaAztGRy8cU1Jzzc65j7dTXQiYvVKKgDnqS04/z9YZxK6uLZh4XIlvEO KPa6Vjs2BK8R0pbuA9RS2v7q1CHHL/JI94+/b0M8uH1+lzlGa4uwEUiS9yYHApIX zpfsE+q1rsaTnt5N04+/vgRopk5+2AXYWlwbjXJk6TZrVEeJ/MUEnMxiQqPiaGWC cPokzXFS/jPZWs0KKaD55obqRu1+cvSvmVAmXM7nqrIrfEfVt7V3kD8XH9kVnRWm cvZUKb/rUNbQaLOPWVtXSl0p2lSHNQ0gszEKzbQtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2cz0W441MiiCJFc8OJIcN8rgTsEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5MTQxZWIzLThjOTUtNDkyYy05Njc3LWI5ZGJkNWZmOGYyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmCswDQYJKoZIhvcNAQELBQADggEBAAkqxa9AlC+o+azlCE7ZciL2j52x uMnmBhQrh0ExPSqZpA6EvR98GOMX8nsDOEO3vjNSsyGPThOtw38npMVeXmsdqL8/ o2SUEsEoEzsTsgifh4hyRXfBv1fUDhJBXrd7VZFQe85M/bYRMXP4KeOVvR5HReH3 LbW+Tin/Gbapa7Zoy1i5gKr98Lk1ngXC/sUTwJasrY9tBSyLUjB7HSPIs9fAhWEv mcPzWCuZ/vHMDOOiuH+eSxrFtRRseGKEC/4X19lOPNvhYz2lwQQKXe55wyhOAUnv pDXLqtdDFZTDln6079Wnn7AxYULT3b4SmcH5NKC0S8dhBYCaNThBCDPlDyQ= -----END CERTIFICATE-----Generated at Tue May 12 21:55:00 2026 by rpki-client